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[57] ABSTRACT 

A roaming terminal enciphers a subscriber's number thereof 
using a public key of a home network and sends the 
enciphered subscriber's number to the home network via a 
roamed network. The home network deciphers the enci- 
phered subscriber's number using a secret key to derive the 
subscriber's number. The home network generates a tem- 
porary authentication key and enciphers it using a public key 
of the roaming terminal corresponding to the subscriber's 
number. Then, the home network notifies the temporary 
authentication key and the enciphered temporary authenti- 
cation key to the roamed network which then notifies the 
roaming terminal of the enciphered temporary authentica- 
tion key and a random number generated at the roamed 
network. Then, an authentication process for the roaming 
terminal is performed between the roaming terminal and the 
roamed network using the random number, the temporary 
authentication key and the enciphered temporary authenti- 
cation key. After completion of the authentication, the 
roamed network acquires a roaming number of the roaming 
terminal and notifies it to the roaming terminal and the home 
network. The roaming terminal, the roamed network and the 
home network store the roaming number and the temporary 
authentication key, respectively. 

9 Claims, 4 Drawing Sheets 
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ROAMING METHOD CAPABLE OF 
IMPROVING ROAMING REGISTRATION 
PROCEDURE 

BACKGROUND OF THE INVENTION 

The present invention relates to a roaming method to be 
performed, particularly when a mobile terminal moves or 
roams to a service area of a service provider with which the 
mobile terminal has no contract, and further relates to a 
mobile communication system which is capable of carrying 
out such a roaming method. 10 

In the field of mobile communication, a plurality of 
service providers have been offering their services in dif- 
ferent regions or areas, respectively. These service providers 
have been offering roaming services so as to allow a mobile 
terminal located in a service area of a service provider with 1 5 
which the mobile terminal has no contract, to receive a 
service similar to that offered in a service area of a service 
provider with which the mobile terminal has a particular 
contract. 

As will later be described in detail, in the conventional 20 
roaming method, for performing an authentication process 
of a roaming terminal with efficiency, an authentication key 
of the roaming terminal is notified from a home network to 
a roamed network during an initial roaming terminal regis- 
tration procedure. Thus, there has been a problem of security 25 
in the conventional roaming method in view of data leakage 
since the authentication key of the corresponding roaming 
terminal is known by the roamed network. 

For solving the foregoing problem, a method has been 
proposed as disclosed in Japanese Unexamined Patent Pub- 30 
licatioo No. 4-352525(352525/92). In this method, a roamed 
network, in response to a location registration request 
received from a roaming terminal, first produces a temporary 
authentication key for use in a roaming terminal registration 
procedure and sends it to a home network. The home 35 
network performs an authentication of the roaming terminal 
via the roamed network. The home network holds a tempo- 
rary authentication key setting key which is the same as that 
held by the roaming terminal. After completion of the 
authentication of the roaming terminal, the home network 40 
enciphers the temporary authentication key using the setting 
key and sends the enciphered temporary authentication key 
to the roaming terminal via the roamed network. Then, the 
roaming terminal deciphers the enciphered temporary 
authentication key using the setting key so as to derive the 45 
temporary authentication key. After this, the temporary 
authentication key is used for an authentication process 
relative to the roamed network. In this manner, the roaming 
terminal registration procedure can be performed without 
revealing an authentication key of the roaming terminal to so 
the roamed network. 

As described above, in the conventional roaming method, 
it is necessary that the roaming terminal first sends the 
subscriber's number (MSN) to the roamed network for 
achieving the location registration request. Since the roam- 55 
ing terminal carries out a transmission by radio, the trans- 
mission may be subjected to interception so that secrecy of 
the roaming terminal can not be ensured. 

SUMMARY OF THE INVENTION 

oU 

Therefore, it is an object of the present invention to 
provide an improved roaming method which can perform a 
roaming terminal registration procedure without revealing 
peculiar data about a roaming terminal to a roamed network. 

It is another object of the present invention to provide an 65 
improved mobile communication system which can ensure 
high security. 



2 

According to one aspect of the present invention, a 
roaming method for allowing a mobile terminal to receive 
from a roamed network other than a home network of the 
mobile terminal a mobile communication service among 
mobile communication services which are offered by a 
plurality of service providers at different service areas, 
respectively, comprises the steps of: providing the mobile 
terminal with a first cipher key; providing the home network 
with a first decipher key which is for deciphering data 
enciphered by using said first cipher key; enciphering iden- 
tification data of the mobile terminal using the first cipher 
key at the mobile terminal upon notifying the identification 
data from the mobile terminal to the home network via the 
roamed network; and deciphering the enciphered identifica- 
tion data using the first decipher key at the home network. 

BRIEF DESCRIPTION OF THE DRAWINGS 

FIG. 1 is a diagram for explaining a roaming terminal 
registration procedure according to a conventional roaming 
method; 

FIG. 2 is a block diagram of a roaming terminal which is 
applied with a roaming method according to a preferred 
embodiment of the present invention; 

FIG. 3 is a block diagram of a roamed network which is 
applied with the roaming method according to the preferred 
embodiment of the present invention; 

FIG. 4 is a block diagram of a home network which is 
applied with the roaming method according to the preferred 
embodiment of the present invention; and 

FIG. 5 is a diagram for explaining a roaming terminal 
registration procedure according to the roaming method of 
the preferred embodiment of the present invention. 

DESCRIPTION OF THE PREFERRED 
EMBODIMENT 

Referring to FIG. 1, a registration procedure of a roaming 
terminal in a conventional mobile terminal roaming method 
will be explained hereinbelow. From notify data constantly 
received from a radio base station, a mobile terminal notices 
that it has performed internetwork roaming and thus it has 
become a roaming terminal. Specifically, the roaming ter- 
minal notices that it has got out of a service area of a home 
network with which the roaming terminal has a particular 
contract and entered a service area of another service 
provider, that is, of a roamed network. Then, the roaming 
terminal sends a location registration request signal 101 to 
the roamed network. The signal 101 includes as a subscrib- 
er's ID a subscriber's number (hereinafter referred to as 
"MSN"). 

In response to the location registration request signal 101 
received from the roaming terminal, the roamed network 
(namely, an exchange included in the roamed network) 
recognizes from MSN contained therein that the terminal is 
a roaming terminal. Then, for performing an authentication 
process, the roamed network sends an internetwork authen- 
tication data readout request signal 102 to the home network 
known from MSN. The signal 102 includes MSN. The 
roamed network further sends an authentication request 
signal 103 to the roaming terminal. The signal 103 includes 
an authentication random number generated at the roamed 
network. The home network stores authentication keys nec- 
essary for authenticating all mobile terminals belonging 
thereto. In response to the internetwork authentication data 
readout request signal 102 received from the roamed 
network, the home network looks up an authentication key 
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of a mobile terminal assigned with MSN contained in the First, a roaming terminal, a roamed network and a home 

signal 102. Then, the home network notifies the located network for carrying out a roaming method according to the 

authentication key to the roamed network in the form of an preferred embodiment of the present invention will be 

internetwork authentication data readout response signal described with reference to FIGS. 2-4. 

"^1* , ... 5 FIG. 2 is a block diagram of a roaming terminal 10. The 

On the other hand, in response to the authentication roami terminal 10 includes a read-only memory 

request signal 103 received from the roamed network, the (hcrcinaftcr referred to „ « R0M ») 11a, a random-access 

roaming terminal performs a calculation at a calculation m (hereinafter referred to as "RAM") 116, a first 

circuit using the authentication random number contained in - 4L *• n% j .* 

the signal 103 and its own authentication key stored therein, 1fl anthmetic section 12a, a second arithmetic section 12b , and 

and then sends a result of the calculation to the roamed 10 * ^o send/receive section 13 The roaming terminal 10 

network in the form of an authentication response signal further mcludes a control section (not shown) for controlhng 

105. mem - 

Then, the roamed network performs a calculation using Tne ROM 11a stores a subscriber's (ID) number 

the authentication key derived from the internetwork authen- (hereinafter referred to as "MSN") assigned to the terminal 

tication data readout response signal 104 from the home 15 10, a secret key peculiar to the terminal 10, a network 

network and the authentication random number which is the number of a home network, a public key of the home 

same as that sent to the roaming terminal in the form of the network and so on. The RAM 11£> stores an authentication 

authentication request signal 103. Thereafter, the roamed key sent from the home network upon performing a roaming 

network performs a comparison between a result of the terminal registration procedure. The first arithmetic section 

calculation performed by the roamed network and the cal- 20 12a performs a calculation in a secret key authentication 

culation result contained in the authentication response manner, while the second arithmetic section 12b performs a 

signal 105. If these calculation results coincide with each calculation in a public key authentication manner, 

other, the roaming terminal is judged to be a mobile terminal FIG. 3 is a block diagram of a roamed network (namely, 

recorded at the home network, that is, the authentication is an exchange included in the roamed network) 20. The 

approved. Then, the roamed network acquires a roaming roamed network 20 includes a visiting location register 

number (RON) to be assigned to the roaming terminal and (hereinafter referred to as "VLR") 21, an arithmetic section 

sends a location registration acknowledge signal 106 includ- 22, a radio send/receive section 23a, a call control section 

ing RON to the roaming terminal. The roamed network 24, a PN oscillating section 25 and a comparing section 26. 

further sends an internetwork location registration request 3Q The VLR 21 stores a roaming number (hereinafter 

signal 107 including MSN and RON to the home network. referred to as "RON"), an authentication key, positional data 

In response to the signal 107 received from the roamed and the like of each of roaming subscribers. The arithmetic 
network, the home network stores MSN and RON contained section 22 performs a calculation in a secret key authenti- 
in the signal 107. Then, the home network sends data about cation manner using the same algorithm as that of the first 
the mobile terminal corresponding to MSN, such as sub- 35 arithmetic section 12a in the roaming terminal 10. The radio 
scriber's data and authentication key, to the roamed network send/receive section 23a is an interface with a radio base 
in the form of an internetwork location registration response station (not shown), while the communication control sec- 
signal 108. In response to the signal 108 received from the tion 23b is an interface with other networks including the 
home network, the roamed network stores the foregoing data home network of the roaming terminal 10. The call control 
about the mobile terminal contained in the signal 108 4Q section 24 performs a call control for a roaming terminal 
together with RON assigned to the corresponding roaming registration procedure including an authentication process, 
terminal. The PN oscillating section 25 generates a random number. 

In the conventional roaming method, roaming terminal The comparing section 26 compares calculation results so as 

registration procedure is performed in the manner as to determine about an authentication, 

described above. After this, call processing for location 45 FIG. 4 is a block diagram of a home network (namely, an 

registration of the roaming terminal and call processing for exchange included in the home network) 30 of the roaming 

making a call from the roaming terminal are directly carried terminal 10. The home network 30 includes a home location 

out between the roamed network and the roaming terminal. register (hereinafter referred to as "HLR") 31a, an RAM 

In the conventional roaming method, for performing the 316, an arithmetic section 32, a communication control 

authentication process of the roaming terminal with 50 section 33, a call control section 34 and an authentication 

efficiency, the authentication key of the roaming terminal is key generating section 35. 

notified from the home network to the roamed network The HLR 31a stores MSN, public keys and the like of a 

during an initial roaming terminal registration procedure. plurality of mobile terminals (including roaming terminals) 

There has been a problem of security in the conventional belonging to the home network 30. The RAM 31b stores a 

roaming method in view of data leakage since the authen- 55 secret key of the home network 30. The arithmetic section 32 

tication key of the corresponding mobile terminal is known performs a calculation in a public key authentication manner 

by the roamed network using the same algorithm as that of the arithmetic section 

As described above, in the conventional roaming method, 126 in the roaming terminal 10. The communication control 

it is necessary that the roaming terminal first sends the section 33 is an interface with other networks including the 

subscriber's number (MSN) to the roamed network for 60 roamed network 20. The call control section 34 performs 

achieving the location registration request. Since the roam- call processing. The authentication key generating section 

ing terminal carries out a transmission by radio, the trans- 35 generates an authentication key to be used in authenti- 

mission may be subjected to interception so that secrecy of cation process between the roaming terminal 10 and the 

the roaming terminal can not be ensured. roamed network 20. Now, the roaming method in the system 

Now, a preferred embodiment of the present invention 65 including the roaming terminal 10, the roamed network 20 

will be described in detail hereinbelow with reference to the and the home network 30 will be described also referring to 

accompanying drawings. FIG. 5. 
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While located in an area where a mobile communication In response to the authentication request signal 404, the 

service is offered, a mobile terminal recognizes a position control section at the roaming terminal 10 reads out a secret 

thereof from notify data constantly sent from a mobile key (hereinafter referred to as "Ksl") peculiar to the termi- 

communication network. Thus, the mobile terminal can nal 10 from the ROM 11a. Then, the control section causes 

recognizes that it has entered a service area of a service 5 the arithmetic section 12b to execute a calculation using 

provider with which it has do contract and thus it has Kpl(Sa) and Ksl. Specifically, the arithmetic section 12b 

become the roaming terminal 10. deciphers Kpl(Sa) using Ksl to derive a calculation result 

T1 * 4 , . , * ft (hereinafter referred to as "Sa'"). Further, the control section 

Upon recognition of roaming to the roamed network 20 v 4 . .„ . i i 

r iL j . f i c ■ causes the arithmetic section 12a to execute a calculation 

from the notify data, the control section of the roaming . 0 , . n c •£.„,, * iL ^ ^ 

- i ia j 7c_ nAwn i u 10 using Sa and Rn. Specifically, the arithmetic section 12a 

terminal 10 reads out from the ROM 11a a network number . . „ JT , 4 , : . _ A . lt „„, 

/L . c «xT\i7^»\ c *i_ i_ * 1 m enciphers Rn using Sa to derive a calculation result RES . 

(hereinafter referred to as NW1) of the home network 30, « r 4 , , nr[M . iL ,. 

;. CKT , ... , c / c j - »\ r The control section sends RES via the radio send/receive 

MSN and a public key (hereinafter referred to as Kpa ) of . , . , . t . c r 

. * . J rL . . *u section 13 to the roamed network 20 in the form of an 

the home network 30. Then, the control section causes the tL . AiX - 

... ,. * U1 . , .. authentication response signal 405. 

anthmetic section 12o to execute a public key authentication °^ 

calculation using MSN and Kpa to derive a calculation result 15 . In ^sponse to the authentication request signal 404, the 

(hereinafter referred to as "Kpa(MSN)"). That is, the arith- anthmetic section 22 at the roamed network 20 performs a 

metic section 12b enciphers MSN using Kpa to derive calculation using ; the random number Rn and the temporary 

Kpa(MSN). Then, via the radio send/receive section 13, the authentication key Sa to denve a calculation result 

control section sends a roaming registration request signal (hereinafter referred to as "RES"). Then, RES is fed to the 

401 including NW1 and Kpa(MSN) to the roamed network 20 com P arin g s e ctioD 26 to b « compared with RES contained in 

20. the authentication response signal 405 sent from the roaming 

terminal 10. If RES and RES 1 coincide with each other, the 

At the roamed network 20, the call control section 24 ca n control section 24 determines approval of the authenti- 

receives the roaming registration request signal 401 via the cal i orj and instructs the VLR 21 to assign RON to the 

radio send/receive section 23a. Then, from NW1 contained 25 roaming terminal 10. On the other hand, if RES and RES' do 

in the signal 401, the call control section 24 recognizes that not coincide with each other, the call control section 24 

a home network of the roaming terminal 10 is the home determines disapproval (NG) of the authentication and stops 

network 30. Subsequently, the call control section 24 sends a ca u connecting process. Upon receipt of RON from the 

to the home network 30 an internetwork roaming request VLR 21, the call control section 24 sends a roaming regis- 

signal 402 including Kpa(MSN) contained in the signal 401. 30 lral i on acknowledge signal 406 including RON to the roam- 

At the home network 30, the call control section 34 in 6 terminal 10 via the radio send/receive section 23a. The 
receives the internetwork roaming request signal 402 via the cal1 contro1 sectl0n 24 mrlner aa internetwork roam- 
communication control section 33. In response to the signal ^ registration request signal 407 including RON and Sa to 
402, the call control section 34 reads out a secret key of the ^ home network 30 via the communication control section 
home network 30 (hereinafter referred to as "Ksa") from the 23b. 

RAM 31£> for feeding to the arithmetic section 32 along with In response to the roaming registration acknowledge 

Kpa(MSN). The arithmetic section 32 executes a public key signal 406, the control section at the roaming terminal 10 

authentication calculation using Kpa(MSN) and Ksa. stores RON and Sa' in the RAM 116. 

Specifically, the arithmetic section 32 deciphers the cipher ^ In response to the internetwork roaming registration 

Kpa(MSN) using Ksa to derive MSN of the roaming termi- request signal 407, the call control section 34 at the home 

nal 10. Based on MSN derived at the arithmetic section 32, network 30 stores Sa and RON in association with MSN in 

the call control section 34 reads out a public key (hereinafter the HLR 31a. Then, the call control section 34 sends to the 

referred to as "Kpl") of the roaming terminal 10 from the roamed network 20 an internetwork roaming registration 

HLR 31a. Simultaneously, the call control section 34 45 acknowledge signal 408 representing an acceptance of the 

instructs the authentication key generating section 35 to registration. In response to the internetwork roaming regis- 

generate an authentication key. In response to the instruction tration acknowledge signal 408, the call control section 24 

from the call control section 34, the authentication key at the roamed network20 stores RON and Sain the VLR 21. 

generating section 35 generates a temporary authentication In tQe f oreg oing manner, the roaming terminal registration 

key (hereinafter referred to as "Sa") using a given known 5o proccdure ^ comp i et ed. After this, connection processes 

method and notifies Sa to the call control section 34. upon transmission (making a call) from the roaming termi- 

Subsequentiy, the call control section 34 feeds thus nal 10 and upon reception (receiving a call) to the roaming 

obtained Kpl and Sa to the arithmetic section 32. The terminal 10 are carried out in the following manner: When 

arithmetic section 32 executes a public key calculation using performing a transmission from the roaming terminal 10, the 

Kpl and Sa to derive a calculation result (hereinafter 55 roaming terminal 10 sends to the roamed network 20 a 

referred to as "Kpl(Sa)"). That is, the arithmetic section 32 transmission request signal including RON. 

enciphers Sa using Kpl. The call control section 34 sends In response to the transmission request signal received 

via the communication control section 33 an internetwork from the roaming terminal 10, the roamed network 20 

roaming response signal 403 including Kpl(Sa) and Sa to recognizes from RON contained in the signal that the 

the roamed network 20, At the roamed network 20, the call 60 terminal requesting a transmission (call) is a roaming ter- 

control section 24 derives Kpl(Sa) and Sa from the inter- minal. Then, the roamed network 20 reads out an authenti- 

network roaming response signal 403 received from the cation key Sa of the roaming terminal corresponding to 

home network 30. Then, the call control section 24 sends to RON and performs an authentication process using Sa. After 

the roaming terminal 10 an authentication request signal 404 the normal completion of the authentication process, the call 

including Kpl(Sa) and a random number (hereinafter 65 connecting process is started. On the other hand, when a 

referred to as "Rn") generated at the PN oscillating section reception to the roaming terminal 10 occurs, the home 

25. network 30 recognizes from RON stored in the HLR 31a 
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that the corresponding terminal is roaming. Then, the home 
network 30 notifies the roamed network 20 of the reception 
to the roaming terminal 10 using a notify signal. RON is set 
in a reception address of the notify signal. 

In response to the notify signal from the home network 
30, the roamed network 20 reads out from the VLR 21 
positional data, an authentication key Sa and the like of the 
roaming terminal corresponding to RON and carries out the 
reception connecting process. 

As described above, in the foregoing preferred 
embodiment, since MSN contained in the roaming registra- 
tion request signal from the roaming terminal is enciphered 
by the public key of the home network, MSN of the roaming 
terminal is not known by the third parties including the 
roamed network. Further, the authentication key used in the 
authentication process between the roaming terminal and the 
roamed network is generated at the home network and not 
peculiar to the roaming terminal. In addition, the authenti- 
cation key is notified from the roamed network to the 
roaming terminal in the state enciphered by the public key 
peculiar to the roaming terminal. Thus, the authentication 
key is not known by the third parties other than the roamed 
network. 

While the present invention has been described in terms 
of the preferred embodiment, the invention is not to be 
limited thereto, but can be embodied in various ways with- 
out departing from the principle of the invention as defined 
in the appended claims. 

What is claimed is: 

1. A roaming method for allowing a mobile terminal to 
receive from a roamed network other than a home network 
of said mobile terminal a mobile communication service 
among mobile communication services which are offered by 
a plurality of service providers at different service areas, 
respectively, said method comprising the steps of: 

providing said mobile terminal with a first cipher key; 

providing said home network with a first decipher key 
which is for deciphering data enciphered by using said 
first cipher key; 

notifying identification data from said mobile terminal to 
said home network via said roamed network; 

enciphering said identification data, as enciphered iden- 
tification data, using said first cipher key at said mobile 
terminal; and 

deciphering said enciphered identification data using said 
first decipher key at said home network. 

2. A roaming method as claimed in claim 1, wherein said 
first cipher key is a public key and said first decipher key is 
a secret key. 

3. A roaming method as claimed in claim 1, further 
comprising the steps of: 

providing said home network with a second cipher key; 
providing said mobile terminal with a second decipher 
key; 

sending an authentication key generated at said home 
network to said roamed network; 

enciphering said authentication key, as an enciphered 
authentication key, using said second cipher key at said 
home network and sending said enciphered authenti- 
cation key to said mobile terminal via said roamed 
network; and 

deciphering said enciphered authentication key using said 
second decipher key at said mobile terminal. 

4. A roaming method as claim in claim 3, further com- 
prising the steps of: 
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generating a random number at said roamed network and 
sending said random number to said mobile terminal 
along with said enciphered authentication key; 

performing a calculation, at said mobile terminal, using 
said random number and said authentication key deci- 
phered by said second decipher key and sending a 
result of said calculation to said roamed network; and 

performing an authentication process at said roamed 
network by comparing said calculation result and a 
result of a calculation using said random number and 
said authentication key at said roamed network. 

5. A roaming method as claimed in claim 3, wherein said 
second cipher key is a public key and said second decipher 
key is a secret key peculiar to said mobile terminal. 

6. A roaming method as claimed in claim 3, further 
comprising the step of performing a roaming registration of 
said mobile terminal at each of said home network and said 
roamed network using said authentication key and a roaming 
number assigned to said mobile terminal by said roamed 
network. 

7. A mobile communication system which allows a 
mobile terminal to receive from a roamed network other 
than a home network of said mobile terminal a mobile 
communication service among mobile communication ser- 
vices which are offered by a plurality of service providers at 
different service areas, respectively, said mobile terminal 
comprising: 

means for, while roaming, enciphering identification data 
of said mobile terminal, as enciphered identification 
data, using a first cipher key and sending said enci- 
phered identification data and a network number of said 
home network in the form of a roaming registration 
request signal; 
means for deciphering an authentication key enciphered 
by a second cipher key and contained in a received 
authentication request signal; and 
means for storing a roaming number contained in a 
received roaming acknowledge signal and said authen- 
tication key in association with each other, 
said roamed network comprising: 

means for, in response to said roaming registration 
request signal, sending an internetwork roaming 
request signal including said enciphered identifica- 
tion data to said home network identified by said 
network number; 
means for storing said authentication key contained in 
an internetwork roaming response signal received 
from said home network and said roaming number 
assigned to said mobile terminal, in association with 
each other; 

means for sending said authentication key enciphered 
by said second cipher key and contained in said 
internetwork roaming response signal to said mobile 
terminal in the form of said authentication request 
signal; and 

means for sending said roaming number to said mobile 

terminal and said home network, and 
said home network comprising: 

means for receiving said internetwork roaming 
request signal and deciphering said enciphered 
identification data; 
means for generating said authentication key, enci- 
phering said authentication key using said second 
cipher key corresponding to said identification 
data and sending said internetwork roaming 
response signal including said authentication key 
and said enciphered authentication key; and 
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means for storing said roaming number in associa- 
tion with said identification data. 
8. A mobile communication system as claimed in claim 7, 
wherein said roamed network comprises: 

means for generating a random number to be contained in 5 

said authentication request signal; 
calculating means for performing a calculation using said 

random number and said authentication key; 
comparing means for comparing an output of said calcu- J0 
lating means and an authentication response signal 
from said mobile terminal; and 
means for assigning said roaming number to said mobile 
terminal when said output and said authentication 
response signal coincide with each other as a compari- 



son result of said comparing means, and wherein said 
mobile terminal comprises: 

calculating means for performing a calculation using 
said random number and said deciphered authenti- 
cation key; and 

means for sending a calculation result of the calculating 
means of said mobile terminal to said roamed net- 
work in the form of said authentication response 
signal. 

9. A mobile communication system as claimed in claim 7, 
wherein said first cipher key is a public key peculiar to said 
home network and said second cipher key is a public key 
peculiar to said mobile terminal. 
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